J 



Europaisches Patentamt 
European Patent Office 
Office europden des brevets 



© Publication number: 



0 400 234 

A1 



EUROPEAN PATENT APPLICATION 



CL 
O 
O 

LU 
-J 
ID 

3 
< 

CO 
LU 
00 



(£) Application number: 89305465.0 
<g> Date of filing: 31.05.89 



© Int. CI* H04L 1/00 



The title of the invention has been amended 


© 


Applicant: Francisco, Michael H. 


(Guidelines for Examination in the EPO, A-lll, 




2780 Churchill Drive 


7.3). 




Hillsborough California 94010 (US) 


© Date of publication of application: 


© 


Inventor: Francisco, Michael H. 


05.12.90 Bulletin 90/49 




2780 Churchill Drive 






Hillsborough California 94010 (US) 


© Designated Contracting States: 






AT BE CH DE ES FR GB QR IT LI LU NL SE 








© 


Representative: Mllhench, Howard Leslie et al 






R.G.C. Jenkins & Co. 26 Caxton Street 






London SW1H ORJ(GB) 



© Method for maintaining data integrity during information transmission. 

© The invention relates to the maintenance of in- 
tegrity of transmitted messages within a data pro- 
cessing system and includes the generation of 
selective message identification indicia based upon 
the nature and content of the message, transmittal of 
the indicia with the message and selective regenera- 
tion of the identification indicia at the point of mes- 
sage receipt for comparison with the transmitted 
indicia prior to release of the received message. 
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METHOD FOR MAINTAINING DATA INTEGRITY DURING INFORMATION TRANSMISSION BY GENERATING 
INDICIA REPRESENTING TOTAL NUMBER OF BINARY 1's and O's OF THE DATA 



This invention relates to data processing sys- 
tem integrity and more particularly to a method for 
maintaining system integrity during information 
transmission between remote data processing com- 
ponents. 



the mandate of the patent statutes, a presently 
preferred embodiment of a method incorporating 
the principles of this invention. 

5 

BRIEF DESCRIPTION OF THE DRAWINGS 



BACKGROUND OF THE INVENTION 



The maintenance of data processing system 
transmission security and integrity poses ever ex- 
panding problems due to the ever increasing utili- 
zation of telephone and other conventional com- 
mercially available transmission facilities for binary 
form data transmission and to the increased op- 
portunities for interception, error introduction and 
for transmission modification. One area of growing 
concern Is the assuring of the exact duplication of 
the transmitted and received message information 
and particularly in those instances where such in- 
formation transmission constitutes an intermediate 
step in a sequence of separate but related and 
interdependent data processing operations. 

SUMMARY OF THE INVENTION 



This invention may be briefly described as an 
improved method for maintaining the integrity of 
data transmission between discrete separated data 
processing system components through generation 
of selective electronic message identification indi- 
cia based upon the nature and content of the 
message, transmittal of such electronic message 
identification indicia together with the message and 
regeneration of such electronic message identifica- 
tion indicia at the point of message receipt for 
comparison with the transmitted electronic mes- 
sage identification indicia. 

Among the advantages of the subject invention 
is markedly improved message transmission integ- 
rity and security that assures immediate recogni- 
tion of identity of information content between the 
transmitted and the received messages. 

The primary object of this invention is the 
provision of an improved method of insuring data 
transmission integrity between separated data pro- 
cessing system components. 

Other objects and advantages of the subject 
invention will become apparent from the following 
portions of this specification and from the appen- 
ded drawings which illustrate, in accordance with 



Figure 1 is a schematic flow diagram illustra- 
io tively depicting the sequence of message transmis- 
sion steps involved in the practice of this invention; 

Figure 2 is a schematic flow diagram illustra- 
tively depicting a system employing message iden- 
tification based upon a message sensitive random 
75 number control system; 

Figures 3A and 3B are illustrative of number 
matrices utilizable in the practice of the invention. 

DESCRIPTION OF THE PREFERRED EMBODI- 
20 MENTS 



With initial reference to Figure 1, the practice 
of the herein described method includes the in- 

25 traduction of a message 10, in binary form, into an 
input buffer 12 conventionally a memory unit and 
suitably of the random access type (RAM). A bit 
counter 14 determines the number of bits in the 
message. Such bit counter can comprise an auto- 

30 matic logic component of a general purpose digital 
computer. Such count could be merely the total 
number of bits or, preferably, the total number of 
zeros and the total number of ones contained in 
the body of the message. The output of the bit 

35 counter 14 is introduced into an electronic iden- 
tification indicia generator 16. The generator 16, 
which is suitably a section of a general purpose 
digital computer such as an IBM 370 or a suitably 
preprogrammed microprocessor such as a 

4o MOTOROLA 68020 or portion thereof, is adapted 
to generate a first electronic identification indicia 18 
that uniquely and selectively identifies the message 
to be transmitted. By way of example, in a rela- 
tively simple approach thereto, such generator 16 

45 could generate a selective and unique electronic 
identification indicia by the use of a preprogram- 
med algorithm in accord with which the total num- 
ber of "ones" in the message is multiplied by an 
arbitrary number, e.g. 16; the product of such mul- 

so tiplication could then be divided by the number of 
"zeros" in the binary coded message; and the 
remainder thereof modified by addition to (or sub- 
traction of) an arbitrary number, i.e. 4. The resulting 
number which would constitute the electronic iden- 
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tification indicia for that particular message would 
then, in all probability, be selectively unique. The 
algorithm and/or the arbitrary numbers employed 
therein could be periodically varied to enhance 
system security. 

Such electronic identification indicia 18 is intro- 
duced into a message gate 20 wherein it is in- 
serted into the message header and forms a pre- 
determined and readily locatable part of the mes- 
sage passed on to the message transmitter 22 for 
transmission to a remote location. 

After receipt of the transmitted message by the 
receiver 24. the message, together with its header 
containing the electronic identification indicia 18, is 
introduced into a buffer 26, again suitably a ran- 
dom access memory unit The transmitted mes- 
sage, but not the header portion thereof, is intro- 
duced into a bit counter 28, of the type heretofore 
described, which counts the number of binary bits 
in the message, suitably for the above example, 
the number of "zeros" and the number of "ones" 
therein. The output of the bit counter 28 is intro- 
duced into an electronic identification indicia gener- 
ator 30, again of the type heretofore described, at 
the receiving station. This generator 30 is preprog- 
rammed to perform the same calculation and to 
use the same algorithm, as that performed by the 
generator 16 at the transmitting location. The out- 
put of the generator 30, if the transmitted message 
has not been modified in any manner, should be a 
second electronic identification indicia 32 that is 
identical with the first electronic identification 18 
generated at the transmitting station and forming a 
portion of the received message header. Such sec- 
ond generated electronic identification indicia 32 is 
introduced into a comparator 34, suitably an auto- 
matic logic component of a general purpose digital 
computer, together with the message header from 
the buffer 26 as indicated at 36. The comparator 34 
will then compare the first electronic identification 
indicia 18 forming a part of the message header 
with the second electronic identification indicia 32 
generated at the receiving station. 

If such indicia do not match, a suitable signal 
can be made to a system monitor and the transmit- 
ted message will not be released. In such instance, 
the sending station can be notified that the mes- 
sage has not been passed and appropriate action, 
such as regeneration of the same first electronic 
identification indicia 18 and retransmission of the 
message, may be initiated. Alternatively, the use of 
a preprogrammed new algorithm may be employed 
and an entirely new first electronic identification 
indicia may be generated for message retransmis- 
sion purposes. 

If, on the other hand, the electronic identifica- 
tion indicia 18 and 32 do match, an appropriate 
signal is sent to the gate 40, and the transmitted 



message thereby released for use or other treat- 
ment at the receiving location. 

Figure 2 is illustrative of a somewhat more 
complicated system for message transmission in- 
5 tegrity employing random number generating tech- 
niques for generating the electronic identification 
indicia. 

As there shown, a message 50 in binary form 
is first introduced into an input buffer 52. A pre- 

;o determined selected portion of this message, des- 
ignated as a "control field" is selected by a 
preprogrammed control field locator 54, suitably an 
address generator, and such control field 76 is 
used to address a random number matrix gener- 

75 ator. By way of illustrative example, the "control 
field" could be that particular portion of the mes- 
sage that is located "X" characters from the start 
thereof and which include the next "N" number of 
characters to be transmitted. Such control field 56 

20 which will consist of a predetermined number of 
discrete alphanumeric characters in binary form, is 
then utilized to address a matrix 58 desirably of a 
nondeterminative character to generate a random 
number 60 output therefrom. The random number 

25 output 60 of the matrix 58 which is the electronic 
identification indicia for this particular message is 
then introduced into a message gate 62. In the 
gate 62, the electronic indentification indicia 60 is 
inserted into the message header and thus forms a 

30 predetermined and readily locatable part of the 
message that is passed on to the message trans- 
mitter 64 for transmission to a remote location. 

After receipt of the transmitted message by the 
message receiver 70, the message, together with 

35 its header containing the randomly generated elec- 
tronic identification indicia 60, is introduced into a 
buffer 72. The transmitted message, but not the 
header portion thereof, is introduced into a 
preprogrammed control field locator 74 which de- 

40 termines the identity of the "control field" in the 
same manner as that described for the locator 
component 54 in the transmitting system. When so 
determined, this control field 76 is again utilized to 
address a number matrix 78 and to thereby gen- 

45 erate a second random number 80 which serves as 
the second electronic identification indicia for the 
now received message. As will now be apparent, 
number matrices 58 and 78 will be identical in 
configuration. 

so The second generated electronic identification 

indicia 80 is introduced into a comparator 82 to- 
gether with the message header portion of the 
received message from the buffer 72, as indicated 
at 84. The comparator 82 then compares the first 

55 electronic identification indicia 60 included in the 
message header with the second electronic iden- 
tification indicia 80 generated at the receiving sta- 
tion. As previously described, a match between the 
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two indicia will permit message reiease, and a 
mismatch will operate to preclude message re- 
lease. 

By way of further example. Figure 3A illustrates 
a simple number matrix system which may be 
employed in the generators 58 and 78. As pre- 
viously described, the "control field" suitably con- 
stitutes a predetermined portion of the message 
that is to be transmitted. For example, the control 
bit locator may be preprogrammed to advance 80 
characters into the message and then to select the 
next 4 characters as the control field number. If 
such 4 selected control field number characters are 
0-2-5-4. the application thereof to a nondetermina- 
tive number matrix such as that shown would result 
in a translation of the control field number 0-2-5-4 
into an electronic identification indicia (6) of 7-1-4- 
1. 

Figure 3B is illustrative of a somewhat more 
complicated random number matrix arrangement 
suitable for use. As here shown, the control field 
numbers, rather than being static, could be as- 
signed on a basis such that each of the matrix 
columns A-D would now contain a differently ori- 
ented series of control field numbers. If one again 
uses the control field characters 0-2-5-4, this num- 
ber generator would translate such control field 
number into an electronic identification indicia of 8- 
3-3-1. 

As will be apparent to those skilled in this art, 
the "control field" or the control field number need 
not necessarily be restricted to integers. Alphabetic 
or mixed alphabetic and numeric combinations will 
be used. Such control fields and matrices, while 
programmed for necessary coincidence at the 
transmitting and receiving locations, can be 
changed or preprogrammed for change at any de- 
sired interval. 



Claims 

1. Method for maintaining integrity of binary 
type object code data messages transmitted be- 
tween remotely located data processing compo- 
nents in a data processing system and wherein 
each such message includes a message body 
uniquely constituted by a multiplicity of discrete 
muitibit characters whose numbers and content is 
determined by the random nature of the intel- 
ligence to be transmitted and a message header, 
comprising the steps of: 

electronically counting the total number of binary 
Vs contained in at least a selected substantial 
multi-character portion of the message body to be 
transmitted at a locus of message transmission, 
electronically counting the total number of binary 
0's contained in said selected substantial multi- 



character portion of the message body to be trans- 
mitted at the locus of message transmission, 
generating a relatively short first selective elec- 
tronic identification indicia in respect to the length 

s of the message body at the locus of message 
transmission uniquely characteristic of said total 
number of binary 1 f s and total number of binary O's 
in said selected multi-character portion of said 
message body to be transmitted by application of a 

w predetermined algorithm to said electronically 
counted total number of binary Vs and total num- 
ber of binary O's in said selected multi-character 
portion of said message body to be transmitted, 
incorporating said first selective electronic iden- 

i5 tification indicia into the message header, 

transmitting said message body and message 
header to a remote data processing component, 
electronically counting the total number of binary 
1 's contained in said selected multi-character por- 

20 tion of said message body at a locus of message 
reception, 

electronically counting the total number of binary 
0's contained in said selected multi-character por- 
tion of said message body at the locus of message 

25 reception, 

generating a second selective electronic identifica- 
tion indicia at the locus of message reception 
uniquely characteristic of said electronically count- 
ed total number of binary Vs and total number of 

30 binary 0's in said selected multi-character portion 
of the received message body by application of 
said predetermined algorithm to said total number 
of binary 1 's and total number of binary 0's in said 
selected multi-character portion of said received 

35 message body. 

and authenticating said received message at the 
locus of message reception when said first and 
second selectively generated electronic identifica- 
tion indicia are identical to each other. 

40 2. The method as set forth in Claim 1 wherein 

said first and second electronic identification indicia 
are generated by utilization of the number of binary 
Vs and binary 0's contained in said selected multi- 
character portion of said message body to address 

45 a predetermined number matrix at the loci of mes- 
sage transmission and reception to generate a ran- 
dom number constituting said transmittable elec- 
tronic identification indicia. 

3. In the maintaining of binary type data trans- 

50 mission integrity intermediate remote data process- 
ing components in a data processing system, the 
steps of 

generating a first selective electronic identification 
indicia in accord with the binary number content of 
55 at least a portion of the message to be transmitted 
that is uniquely characteristic of the binary digit 
content thereof; 

transmitting said message to a remote data pro- 
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cessing component together with said first selec- 
tive electronic identification indicia; 
generating a second selective electronic identifica- 
tion indicia at the locus of message reception in 
accord with the binary number content of at least a 5 
portion of the-received message; 
and authenticating said received message when 
said first and second selective electronic identifica- 
tion indicia are in correspondence. 

4. The method as set forth in claim 3, wherein to 
said first and second electronic identification indicia 

are generated by the application of a predeter- 
mined algorithm to at least a portion of the binary 
number content of the message. 

5. The method as set forth in claim 3, wherein ts 
said first and second electronic identification indicia 

are generated by utilization of the binary number 
content of a predetermined portion of a message to 
address a predetermined number matrix at the loci 
of message transmission and reception to generate 20 
a random number constituting said transmittable 
electronic identification indicia. 

6. A data processing system adapted and ar- 
ranged to operate in accordance with a method as 
claimed in any preceding claims. 25 
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FIG. 3 A 
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